$ rpki-client -vvf rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.mft File: UjrFjamEDQscqom9_54NzkZ2fEo.mft (raw, json) Hash identifier: 1KLbQbOebGEglMuwIUxNwWSUHfVpJD2nSleTpjNgviI= Subject key identifier: 6D:5F:FF:5D:11:5E:42:0B:9D:6D:7F:F7:DA:15:29:5D:D8:72:BD:FA Authority key identifier: 52:3A:C5:8D:A9:84:0D:0B:1C:AA:89:BD:FF:9E:0D:CE:46:76:7C:4A Certificate issuer: /CN=A9124B27/serialNumber=523AC58DA9840D0B1CAA89BDFF9E0DCE46767C4A Certificate serial: 7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UjrFjamEDQscqom9_54NzkZ2fEo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.mft Manifest number: 78 Signing time: Thu 07 Aug 2025 07:26:33 +0000 Manifest this update: Thu 07 Aug 2025 07:26:33 +0000 Manifest next update: Thu 14 Aug 2025 07:26:33 +0000 Files and hashes: 1: UjrFjamEDQscqom9_54NzkZ2fEo.crl (hash: HYuSF1ArgIFtsEsxIFdIXQu+NvszkViRzh7aeui4uh8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.crl rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UjrFjamEDQscqom9_54NzkZ2fEo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124B27, serialNumber=523AC58DA9840D0B1CAA89BDFF9E0DCE46767C4A Validity Not Before: Aug 7 07:26:33 2025 GMT Not After : Aug 14 07:26:33 2025 GMT Subject: CN=68945529-b34f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:34:49:aa:3d:fa:3f:46:08:8c:19:28:79:5b: b3:65:d7:fe:cf:3b:22:fa:ee:ce:24:a7:92:ed:ab: 99:d1:1b:52:f9:49:90:f5:80:af:74:0b:dc:fe:1f: 20:d1:a5:cd:96:94:8e:55:8d:ad:ed:90:c3:f3:c7: 66:87:9d:c7:56:bc:ba:60:f8:9b:93:59:73:eb:5c: c9:7b:0c:25:97:eb:da:2c:5f:de:a8:c8:d4:38:bb: 97:b2:47:b5:c1:36:19:2f:ba:03:59:30:a5:0d:ab: a1:32:d2:4e:9e:e0:6b:df:94:13:8e:84:6d:04:7e: d0:00:ab:f8:27:d5:b7:76:45:89:49:77:33:4d:fd: 0a:55:7c:83:d4:2a:09:31:22:3d:cf:41:67:72:c2: 91:e0:19:f5:5b:33:05:b9:ec:1e:b7:7f:a4:a7:35: 32:be:9e:5c:52:ec:f6:b9:45:b6:4f:ae:28:ab:2e: 9c:5a:60:8c:b6:f6:ab:70:c6:b7:ba:71:b3:c1:c0: 84:ea:c4:da:2f:44:e3:1b:25:7c:4d:30:9e:a5:4d: 0c:b5:31:85:fa:49:0a:42:89:ac:2f:9b:9f:29:d2: fa:34:91:91:4b:d6:b9:a1:da:df:27:b1:00:73:81: 0a:e8:a7:59:af:e3:e5:bc:55:ab:fe:93:b4:d1:25: c3:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:5F:FF:5D:11:5E:42:0B:9D:6D:7F:F7:DA:15:29:5D:D8:72:BD:FA X509v3 Authority Key Identifier: keyid:52:3A:C5:8D:A9:84:0D:0B:1C:AA:89:BD:FF:9E:0D:CE:46:76:7C:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UjrFjamEDQscqom9_54NzkZ2fEo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:68:f5:53:fa:6f:f4:75:ff:59:76:59:d4:6a:61:3b:e4:63: 37:fa:39:8e:ce:dc:19:fb:30:53:7e:19:df:1d:86:b7:07:3f: 2b:ef:a2:23:88:84:56:ec:21:d5:a8:ad:60:cb:c5:5a:64:a9: bc:99:17:82:be:33:79:80:c6:d6:98:c2:c9:f9:76:88:bb:8e: 08:10:f2:c8:52:7a:24:14:80:e8:d5:5a:0f:c9:7f:af:96:a5: 61:81:a5:86:28:d1:21:46:c0:3f:fd:d7:8d:a0:90:5e:bf:63: c5:11:66:96:03:76:5b:11:83:4c:23:d8:7c:bd:91:2f:ea:3d: f4:99:ad:b1:70:cb:ff:3f:0d:bb:87:77:e4:33:7b:0f:56:f1: b2:ab:17:9b:0e:a7:f8:6b:96:20:21:59:93:ca:be:83:83:53: 6d:31:e5:69:e2:8f:f2:80:b2:53:8c:fc:f1:53:6c:9b:18:41: 46:a3:8b:01:10:76:fc:f4:f8:55:97:be:c1:6d:cd:0e:e2:7c: 50:18:47:c0:c7:99:6f:69:4e:c2:c2:63:39:f7:4c:38:dc:a3: ef:39:e1:56:25:43:50:07:42:8a:0b:0c:86:c3:7d:bb:20:8f: f4:a4:5d:6b:da:c4:2b:57:79:ca:da:1b:00:8b:1d:da:e3:96: 9a:ed:ae:3f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NEIyNzExMC8GA1UEBRMoNTIzQUM1OERBOTg0MEQwQjFDQUE4OUJERkY5RTBEQ0U0 Njc2N0M0QTAeFw0yNTA4MDcwNzI2MzNaFw0yNTA4MTQwNzI2MzNaMBgxFjAUBgNV BAMTDTY4OTQ1NTI5LWIzNGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHNEmqPfo/RgiMGSh5W7Nl1/7POyL67s4kp5Ltq5nRG1L5SZD1gK90C9z+HyDR pc2WlI5Vja3tkMPzx2aHncdWvLpg+JuTWXPrXMl7DCWX69osX96oyNQ4u5eyR7XB NhkvugNZMKUNq6Ey0k6e4GvflBOOhG0EftAAq/gn1bd2RYlJdzNN/QpVfIPUKgkx Ij3PQWdywpHgGfVbMwW57B63f6SnNTK+nlxS7Pa5RbZPriirLpxaYIy29qtwxre6 cbPBwITqxNovROMbJXxNMJ6lTQy1MYX6SQpCiawvm58p0vo0kZFL1rmh2t8nsQBz gQrop1mv4+W8Vav+k7TRJcOVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbV//XRFe QgudbX/32hUpXdhyvfowHwYDVR0jBBgwFoAUUjrFjamEDQscqom9/54NzkZ2fEow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0QjI3LzUwMDYxOERDQzZF ODExRUY4N0FFNjkwREM0RjlBRTAyL1VqckZqYW1FRFFzY3FvbTlfNTROemtaMmZF by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVWpyRmphbUVEUXNjcW9tOV81NE56a1oyZkVvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0 QjI3LzUwMDYxOERDQzZFODExRUY4N0FFNjkwREM0RjlBRTAyL1VqckZqYW1FRFFz Y3FvbTlfNTROemtaMmZFby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAApo9VP6b/R1/1l2WdRqYTvkYzf6OY7O3Bn7MFN+Gd8dhrcHPyvvoiOI hFbsIdWorWDLxVpkqbyZF4K+M3mAxtaYwsn5doi7jggQ8shSeiQUgOjVWg/Jf6+W pWGBpYYo0SFGwD/9142gkF6/Y8URZpYDdlsRg0wj2Hy9kS/qPfSZrbFwy/8/DbuH d+Qzew9W8bKrF5sOp/hrliAhWZPKvoODU20x5Wnij/KAslOM/PFTbJsYQUajiwEQ dvz0+FWXvsFtzQ7ifFAYR8DHmW9pTsLCYzn3TDjco+854VYlQ1AHQooLDIbDfbsg j/SkXWvaxCtXecraGwCLHdrjlprtrj8= -----END CERTIFICATE-----Generated at Fri Aug 8 20:53:05 2025 by rpki-client